Hello pf, I always get my ideas just on the crunch pre Release ;-). The question is if it is planned to be able to tag packets on the isakmpd SA. Since all the packets get mixed into enc0, it's very difficult to filter an attack from a brain dead client's lan. If we could tag at least the origin the it could be easier to know whose the culprit. Off course I'm asuming that they would send forged IPs or something like that. Of course may be it's the wrong list to ask for it. If so, where should I ask?
-- Best regards, Alejandro Belluscio
